Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/HXt5dXQ46ChOKf0CAeGAkMM2lCI.roa
File: HXt5dXQ46ChOKf0CAeGAkMM2lCI.roa (raw, json)
Hash identifier: HoONUx7oh+NvdF461y5GcrswoIbLQ1gjYcX1/FJYWJ8=
Subject key identifier: 1D:7B:79:75:74:38:E8:28:4E:29:FD:02:01:E1:80:90:C3:36:94:22
Certificate issuer: /CN=81c8b73ab7bdeb76ff48b2ca099616edbe71c426
Certificate serial: 05820EB9
Authority key identifier: 81:C8:B7:3A:B7:BD:EB:76:FF:48:B2:CA:09:96:16:ED:BE:71:C4:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gci3Ore963b_SLLKCZYW7b5xxCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/HXt5dXQ46ChOKf0CAeGAkMM2lCI.roa
Signing time: Sat 01 Jan 2022 06:04:25 +0000
ROA not before: Sat 01 Jan 2022 06:04:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3356
IP address blocks: 45.92.29.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92409529 (0x5820eb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81c8b73ab7bdeb76ff48b2ca099616edbe71c426
Validity
Not Before: Jan 1 06:04:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1d7b79757438e8284e29fd0201e18090c3369422
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:a4:b7:f0:1a:c0:31:c5:6b:a3:d2:9b:ce:c2:
9a:ea:8b:ec:ab:7c:60:2c:c7:4f:03:8c:c6:3e:f7:
4e:1b:bd:9e:f4:e7:45:90:a3:4e:c6:02:dc:4a:89:
f3:d1:55:ca:cd:f6:24:a7:3f:f9:80:6f:3f:98:1d:
7a:e8:7b:76:00:3d:6d:13:46:46:ef:78:7a:52:0f:
d5:ec:3a:16:ee:22:c5:96:9f:1e:ce:43:de:64:fa:
d3:05:5c:ad:db:c5:44:8b:38:fc:f4:24:eb:13:b6:
de:34:cf:71:86:c9:56:98:97:36:13:ca:1a:0c:7e:
3d:56:4a:5a:8c:de:f6:e4:d1:aa:3c:b5:40:2f:ce:
6e:d8:0c:56:c6:7f:6d:e7:a5:dc:8c:c3:22:19:d1:
01:b8:9c:4b:34:87:4f:e6:0e:c6:03:6c:59:98:40:
0a:79:be:19:2f:e7:c1:8b:12:64:9d:ba:5c:8a:4b:
98:2a:70:95:f1:0a:24:74:26:35:58:2c:4d:73:da:
73:09:b1:e3:06:c9:31:76:3b:07:42:fc:05:d9:3a:
66:df:49:9e:2b:29:fb:c9:02:4c:c5:62:26:97:cd:
e9:e0:b9:b0:5b:ba:00:96:eb:16:53:db:d7:92:63:
82:e3:e9:10:f6:c7:e9:33:f7:6f:98:c9:19:df:02:
34:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:7B:79:75:74:38:E8:28:4E:29:FD:02:01:E1:80:90:C3:36:94:22
X509v3 Authority Key Identifier:
keyid:81:C8:B7:3A:B7:BD:EB:76:FF:48:B2:CA:09:96:16:ED:BE:71:C4:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gci3Ore963b_SLLKCZYW7b5xxCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/HXt5dXQ46ChOKf0CAeGAkMM2lCI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/gci3Ore963b_SLLKCZYW7b5xxCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.92.29.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:42:84:45:8e:34:02:25:69:82:9b:da:61:f5:21:b8:eb:1d:
17:99:b6:87:5a:9f:92:37:0e:a9:ee:14:87:48:c2:c9:1f:08:
f5:15:a2:76:4a:8b:ed:74:66:31:81:c0:ef:f4:a9:2e:23:65:
60:cc:fd:56:7a:08:21:8d:5d:23:91:b9:c3:ea:76:a7:d7:50:
3e:2a:72:84:bd:8e:a4:9e:7b:45:cd:c6:41:cb:41:ff:40:1f:
37:5c:ef:c4:27:9c:5d:ef:8c:89:fd:b0:95:19:d1:3f:ee:e4:
42:cb:02:c7:03:16:3d:03:a4:65:f1:82:81:88:ab:1c:a6:18:
05:79:22:08:f7:85:85:e1:6f:67:77:ea:26:17:fe:f7:d7:1a:
ea:a2:51:2e:d0:31:f8:7e:4e:54:85:50:f9:0b:69:79:76:00:
9a:ae:aa:b7:ef:ee:39:7f:0f:97:61:74:9a:a9:21:ce:1a:ef:
a9:1a:c9:d8:f3:0a:f0:70:0f:23:8f:48:30:41:87:4e:a5:10:
fd:ca:78:f1:2f:a8:88:55:f2:c7:64:1f:22:a2:ef:aa:f8:c1:
9a:2a:cb:79:0d:bb:13:f4:67:23:fe:64:6e:4a:15:53:71:d4:
b3:ef:1e:c5:01:b8:80:39:c3:5b:0a:21:d8:b1:91:b7:b6:6f:
f4:a1:e7:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:02 2024 by rpki-client on console-ams.rpki-client.org